www.fernleycommunityfoundation.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:df:f9:7c:3c:a5:42:4a:4e:be:51:e4:80:30:c7:dc:27:54 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.fernleycommunityfoundation.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:df:f9:7c:3c:a5:42:4a:4e:be:51:e4:80:30:c7:dc:27:54Serial Number (int): 337551448464448658540151291121497422964564
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f1:a0:5c:ea:21:7d:55:28:01:6a:6b:ae:8a:76:cd:d5:8f:a3:de:04
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 73:de:dc:54:c1:20:45:95:fb:da:0d:db:17:f7:67:22:45:82:19:70
Fingerprint (sha256): 46:54:63:f5:f4:3d:88:7a:b9:6f:d3:33:82:6b:6f:a6:3b:92:2f:54:a8:5e:86:3f:20:11:78:d8:d7:21:c3:26
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.fernleycommunityfoundation.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.fernleycommunityfoundation.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.fernleycommunityfoundation.org
Other certificates including the domain name fernleycommunityfoundation.org
(limited to 100 certificates)
fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
www.fernleycommunityfoundation.org
fernleycommunityfoundation.org
fernleycommunityfoundation.org
Certificate
The complete raw certificate details for www.fernleycommunityfoundation.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgISA9/5fDylQkpOvlHkgDDH3CdUMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODExMjYyMDM5NTFaFw0x OTAyMjQyMDM5NTFaMC0xKzApBgNVBAMTInd3dy5mZXJubGV5Y29tbXVuaXR5Zm91 bmRhdGlvbi5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZuhr3 4ONcGdLs8KJ6NC9262f5QSvounrDWnQpntrXT9ou0Jax76ZcjXzpLyzpRrk+9eeM MTJ7bLhe52SPZWRr/phig4RVYy7BbY7k1ZOd95CzPfUBu3Xnwf4dOGQJfU1QGKDG f/b6ZFat0OQwz14dibgZrOeMtAz9cUhybwJ0Uay4NoUdDUKIXfVCtOx1OM3CmiR+ IcIEKkz5CDUhoeDasmU8h0WXQWILiw9EVu0iVBV4KY7BSyybiQbR9c88lPHqYEGl rzu0Ega6hXYOev1nLM4O4Pv4W1Mw6W5nWBj2Pka+SUrINlMEtjaMkVXdwKCbIMB5 7hRiwNofw9YX1sG5AgMBAAGjggJ1MIICcTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FPGgXOohfVUoAWprrop2zdWPo94EMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wLQYDVR0RBCYwJIIid3d3LmZlcm5sZXlj b21tdW5pdHlmb3VuZGF0aW9uLm9yZzBMBgNVHSAERTBDMAgGBmeBDAECATA3Bgsr BgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1AHR+2oMxrTMQkSGcziVPQnDC v/1eQiAIxjc1eeYQe8xWAAABZ1H225oAAAQDAEYwRAIgXlHqkcc7EF7EbUGDJ1tC rMrSHdhRYLAcKcRLBqsixJ4CIA9r0zIlyKQqKv1zfnoPdouKNEZ1zrjbdZWey+L9 NXk6AHUAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFnUfbb0AAA BAMARjBEAiBWSbHQ2WRvjOZ21NNM52v/IsRbV39EOZIGMNTeb95aJwIgBTCoc16G WYWfWBhtBBSlKzlHuOtUB2CbRSDv6c2kuz0wDQYJKoZIhvcNAQELBQADggEBAFh4 BX2lSNmngjj2ImO08UZnGQaXxFlh17uGZG732PECdx+kzgc21pGQm0q421UsPRYq OvDVbYpvsktB7Zy465Wvz6ne5aoV5sCDHwbSba+rgMNRyPNlyWEMtr6qLAzlWdOx q16hMeQe+IY69CjsFsTh4CdIYIBYN5rXQX3k3McYVe93OH4NxyNoJKvtQWJWYwkE iGPFbSV36Ikb9aWDE7vS1/1kr1J/zsYZ1p1TZ9m2/d8DYwMkzggOtNsVeKwy757l xO2s8Z3TCvcQCorJOwBT4+b8Sdfe16MHmDSCouw+i9CNiSqfuvtydKK0eXPNihgl fc0iwSoWHvstnXifxlU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmboa9+DjXBnS7PCiejQv dutn+UEr6Lp6w1p0KZ7a10/aLtCWse+mXI186S8s6Ua5PvXnjDEye2y4Xudkj2Vk a/6YYoOEVWMuwW2O5NWTnfeQsz31Abt158H+HThkCX1NUBigxn/2+mRWrdDkMM9e HYm4GaznjLQM/XFIcm8CdFGsuDaFHQ1CiF31QrTsdTjNwpokfiHCBCpM+Qg1IaHg 2rJlPIdFl0FiC4sPRFbtIlQVeCmOwUssm4kG0fXPPJTx6mBBpa87tBIGuoV2Dnr9 ZyzODuD7+FtTMOluZ1gY9j5GvklKyDZTBLY2jJFV3cCgmyDAee4UYsDaH8PWF9bB uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 337551448464448658540151291121497422964564 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-26 20:39:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-24 20:39:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.fernleycommunityfoundation.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19406232625728323070954969661627368451672412731760132677828820809944907589882276373113091742734758249387261444605143552769896330291852952035877163502413036900422361652145243687975615007052229888445843117546665402383085833282493706085968604742473163312980379814032506676333718028851573082250738992260409486736879539087446929062253677826710673028344666012468166934854708157609468618046599072540459040232928492468319230670699147034685812554170983357088228969913685884997398052731960639057391643530526969245178714789129424329560036013286398419049283388153805793673220082878579894350591083992156703519353508523464031912377 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f1a05cea217d5528016a6bae8a76cdd58fa3de04 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fernleycommunityfoundation.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016751f6db9a000004030046304402205e51ea91c73b105ec46d4183275b42accad21dd85160b01c29c44b06ab22c49e02200f6bd33225c8a42a2afd737e7a0f768b8a344675ceb8db75959ecbe2fd35793a007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016751f6dbd0000004030046304402205649b1d0d9646f8ce676d4d34ce76bff22c45b577f4439920630d4de6fde5a2702200530a8735e8659859f58186d0414a52b3947b8eb5407609b4520efe9cda4bb3d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 005878057da548d9a78238f62263b4f14667190697c45961d7bb86646ef7d8f102771fa4ce0736d691909b4ab8db552c3d162a3af0d56d8a6fb24b41ed9cb8eb95afcfa9dee5aa15e6c0831f06d26dafab80c351c8f365c9610cb6beaa2c0ce559d3b1ab5ea131e41ef8863af428ec16c4e1e02748608058379ad7417de4dcc71855ef77387e0dc7236824abed4162566309048863c56d2577e8891bf5a58313bbd2d7fd64af527fcec619d69d5367d9b6fddf03630324ce080eb4db1578ac32ef9ee5c4edacf19dd30af7100a8ac93b0053e3e6fc49d7ded7a307983482a2ec3e8bd08d892a9fbafb7274a2b47973cd8a18257dcd22c12a161efb2d9d789fc655